#patch-management

[ follow ]
#cybersecurity #vulnerability #adobe-patches #substance-3d #code-execution-vulnerabilities #libraesva
Information security
fromZero Day Initiative
5 days ago

Zero Day Initiative - The October 2025 Security Update Review

Adobe released 12 bulletins addressing 36 CVEs, including multiple Critical code-execution vulnerabilities in Substance 3D Stager, Dimension, Illustrator, Commerce, and FrameMaker.
Information security
fromSecurityWeek
3 weeks ago

Libraesva Email Security Gateway Vulnerability Exploited by Nation-State Hackers

A command-injection vulnerability in Libraesva ESG allows arbitrary shell command execution via crafted compressed email attachments; patches available for ESG 5.x while 4.x is discontinued.
Information security
fromTechzine Global
1 month ago

Authorities warn Citrix zero-days will likely be abused

Critical NetScaler vulnerabilities, including an actively exploited CVE-2025-7775 zero-day, enable system takeover, denial-of-service, and data access — immediate patching required.
#cybersecurity
more#cybersecurity
fromComputerWeekly.com
3 months ago

Citrix Bleed 2 under active attack, reports suggest | Computer Weekly

While no public reporting of exploitation for this vulnerability has emerged, ReliaQuest has observed indications of exploitation to gain initial access.
Information security
DevOps
fromComputerworld
4 months ago

Coming soon to enterprises: One Windows Update to rule them all

Microsoft aims to unify update management for Windows and apps, simplifying processes and reducing costs for system administrators.
fromTechzine Global
5 months ago

SAP patches zero-day vulnerability in NetWeaver, denies exploitation

ReliaQuest reported that multiple customers have been compromised via unauthorized file uploads to SAP NetWeaver, allowing remote code execution.
Information security
[ Load more ]